Disable access for tor2web users?

[glamrock]

@fpietrosanti writes

I would suggest to add a Tor2web policy that, looking at X-Tor2web: HTTP
header, enable or disable access to the Blog trough he internet

[glamrock]

My default stance on this is to not disable access by tor2web users. I don't see it as a threat vector or an enhancement for onionsite admins, but am open to other opinions.

[fpietrosanti]

@glamrock You may yet detect the Tor2web access and suggest to access the site by directly on .onion, even if accessing it trough tor2web should be faster, so it really depends on the content.
For any "authenticated" resources, would be better to be accessible only over .onion because a Tor2web node could intercept the login/password.
For any "public" resources, would be fine to access it over tor2web.